This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5mNquBo0Op_9glfqyx3exTiWaAQ.cer File: 5mNquBo0Op_9glfqyx3exTiWaAQ.cer (raw, json) Hash identifier: 1toeBF0HOcvK1t7QqN/5viC9mdguO/z+Y9DDtDea4MA= Subject key identifier: E6:63:6A:B8:1A:34:3A:9F:FD:82:57:EA:CB:1D:DE:C5:38:96:68:04 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7758A0A2FE041A118337A134972750B8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6d/1455d2-724a-439e-96ed-9876aebbd2c9/1/5mNquBo0Op_9glfqyx3exTiWaAQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6d/1455d2-724a-439e-96ed-9876aebbd2c9/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:17:35 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 29357 IP: 78.89.0.0/16 IP: 178.53.0.0/16 IP: 185.146.240.0/22 IP: 188.70.0.0/15 IP: 217.69.176.0/20 IP: 2a00:1850::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:a0:a2:fe:04:1a:11:83:37:a1:34:97:27:50:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:17:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e6636ab81a343a9ffd8257eacb1ddec538966804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:83:ff:a3:1b:51:b6:53:6e:99:94:2f:47:0f: a9:78:49:d8:fa:81:0a:bb:7a:c7:33:6a:e7:b6:eb: 85:dc:6a:99:44:e8:fe:d3:67:70:7c:08:ef:79:30: 89:76:3f:2b:29:d1:8c:46:fe:83:2a:8b:d7:cd:6a: 95:a7:f6:58:a7:89:54:e2:87:27:b1:0b:b0:a5:a0: d6:fe:48:03:ba:6a:c3:a5:f4:76:d0:4e:e9:2e:8c: 39:59:2f:6b:47:60:d7:6f:32:53:6c:78:54:a1:2b: 77:d9:5b:c4:46:7d:5a:59:3c:33:9f:cb:b8:4f:82: 62:dd:42:da:fb:69:48:e4:ae:5e:f3:9f:97:a9:17: e0:47:d2:fa:6e:33:c5:fb:59:c8:38:b3:d0:aa:95: a0:d9:28:e1:7f:03:8c:a1:2c:a6:dc:be:c9:31:dc: d4:af:45:af:a5:48:b8:6b:c1:58:0b:d6:fc:38:e4: 7d:62:e1:18:fd:65:20:dc:b1:55:9a:e0:d8:c1:7b: cd:c2:98:56:f9:cd:ab:35:31:a9:af:ab:66:3c:bb: 43:3d:f8:fa:44:fe:c8:61:24:c5:a0:c0:50:e7:55: da:19:d3:3d:5f:18:04:5f:cc:2c:4a:b4:87:8e:50: 45:03:56:28:1c:a3:01:e8:bc:a1:85:3a:f5:b0:8a: 65:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:63:6A:B8:1A:34:3A:9F:FD:82:57:EA:CB:1D:DE:C5:38:96:68:04 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1455d2-724a-439e-96ed-9876aebbd2c9/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1455d2-724a-439e-96ed-9876aebbd2c9/1/5mNquBo0Op_9glfqyx3exTiWaAQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.89.0.0/16 178.53.0.0/16 185.146.240.0/22 188.70.0.0/15 217.69.176.0/20 IPv6: 2a00:1850::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 29357 Signature Algorithm: sha256WithRSAEncryption 04:00:28:da:7e:bc:84:51:d0:ae:65:6d:7c:66:d3:42:eb:9b: d4:35:43:10:d5:db:0a:a2:67:a5:b6:c2:4f:eb:d6:b6:1d:24: 1c:37:d8:79:9f:4d:de:0b:4c:7c:3b:5e:a3:de:62:ed:45:53: 96:e6:cf:98:9c:a2:b3:26:b0:06:ea:cf:02:58:b7:83:9a:03: 95:5c:05:72:24:65:3e:67:50:af:b2:25:47:31:78:ef:96:09: 3c:f1:04:ae:c1:f8:c8:65:f4:a3:cb:ce:d4:50:4f:27:37:49: 2d:60:fb:a8:10:06:d2:3e:86:67:76:d8:ed:55:ca:24:ed:a9: 89:b3:0f:aa:4b:49:77:a1:e0:6d:3d:ad:60:19:9b:10:b5:5d: e9:ea:f1:f4:b4:6a:5e:71:ae:e8:13:bf:0d:91:9d:f0:e9:fe: 0f:8e:f5:77:fc:52:52:3b:d8:d6:8f:0d:83:b5:7f:b1:d5:e3: d9:74:40:59:84:7b:1c:b4:68:88:3d:24:20:ee:c6:9a:01:62: d6:ba:d6:84:20:94:4c:23:95:c6:03:34:c2:b6:21:86:ac:65: b0:ce:17:fa:bb:d3:ad:67:d8:d0:4c:74:29:c9:29:a4:9f:cd: 4b:22:11:64:01:41:55:4a:44:3d:d8:4a:aa:ec:d3:72:64:95: c2:fd:87:04 -----BEGIN CERTIFICATE----- MIIFtzCCBJ+gAwIBAgISAZt3WKCi/gQaEYM3oTSXJ1C4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxNzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNjYzNmFiODFhMzQzYTlmZmQ4MjU3ZWFjYjFkZGVjNTM4OTY2ODA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4P/oxtRtlNumZQvRw+peEnY+oEK u3rHM2rntuuF3GqZROj+02dwfAjveTCJdj8rKdGMRv6DKovXzWqVp/ZYp4lU4ocn sQuwpaDW/kgDumrDpfR20E7pLow5WS9rR2DXbzJTbHhUoSt32VvERn1aWTwzn8u4 T4Ji3ULa+2lI5K5e85+XqRfgR9L6bjPF+1nIOLPQqpWg2SjhfwOMoSym3L7JMdzU r0WvpUi4a8FYC9b8OOR9YuEY/WUg3LFVmuDYwXvNwphW+c2rNTGpr6tmPLtDPfj6 RP7IYSTFoMBQ51XaGdM9XxgEX8wsSrSHjlBFA1YoHKMB6LyhhTr1sIplqQIDAQAB o4ICwzCCAr8wHQYDVR0OBBYEFOZjargaNDqf/YJX6ssd3sU4lmgEMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZkLzE0NTVk Mi03MjRhLTQzOWUtOTZlZC05ODc2YWViYmQyYzkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQvMTQ1NWQy LTcyNGEtNDM5ZS05NmVkLTk4NzZhZWJiZDJjOS8xLzVtTnF1Qm8wT3BfOWdsZnF5 eDNleFRpV2FBUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEMGCCsGAQUF BwEHAQH/BDQwMjAhBAIAATAbAwMATlkDAwCyNQMEArmS8AMDAbxGAwQE2UWwMA0E AgACMAcDBQMqABhQMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQCAnKtMA0GCSqGSIb3 DQEBCwUAA4IBAQAEACjafryEUdCuZW18ZtNC65vUNUMQ1dsKomeltsJP69a2HSQc N9h5n03eC0x8O16j3mLtRVOW5s+YnKKzJrAG6s8CWLeDmgOVXAVyJGU+Z1CvsiVH MXjvlgk88QSuwfjIZfSjy87UUE8nN0ktYPuoEAbSPoZndtjtVcok7amJsw+qS0l3 oeBtPa1gGZsQtV3p6vH0tGpeca7oE78NkZ3w6f4PjvV3/FJSO9jWjw2DtX+x1ePZ dEBZhHsctGiIPSQg7saaAWLWutaEIJRMI5XGAzTCtiGGrGWwzhf6u9OtZ9jQTHQp ySmkn81LIhFkAUFVSkQ92Eqq7NNyZJXC/YcE -----END CERTIFICATE-----Generated at Mon Jan 26 23:25:49 2026 by rpki-client